Debian

Debian 12 (bookworm)

11227 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2022-24958

  • EPSS 0.05%
  • Veröffentlicht 11.02.2022 06:15:06
  • Zuletzt bearbeitet 21.11.2024 06:51:27

drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.

5.5

CVE-2022-24959

  • EPSS 0.06%
  • Veröffentlicht 11.02.2022 06:15:06
  • Zuletzt bearbeitet 21.11.2024 06:51:27

An issue was discovered in the Linux kernel before 5.16.5. There is a memory leak in yam_siocdevprivate in drivers/net/hamradio/yam.c.

5.5

CVE-2021-33061

  • EPSS 0.05%
  • Veröffentlicht 09.02.2022 23:15:15
  • Zuletzt bearbeitet 05.05.2025 17:17:05

Insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters may allow an authenticated user to potentially enable denial of service via local access.

8.8

CVE-2021-4154

  • EPSS 0.84%
  • Veröffentlicht 04.02.2022 23:15:12
  • Zuletzt bearbeitet 21.11.2024 06:37:00

A use-after-free flaw was found in cgroup1_parse_param in kernel/cgroup/cgroup-v1.c in the Linux kernel's cgroup v1 parser. A local attacker with a user privilege could cause a privilege escalation by exploiting the fsconfig syscall parameter leading...

5.5

CVE-2022-0264

  • EPSS 0.09%
  • Veröffentlicht 04.02.2022 23:15:12
  • Zuletzt bearbeitet 21.11.2024 06:38:15

A vulnerability was found in the Linux kernel's eBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to le...

5.5

CVE-2022-0487

  • EPSS 0.05%
  • Veröffentlicht 04.02.2022 23:15:12
  • Zuletzt bearbeitet 21.11.2024 06:38:45

A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove in drivers/memstick/host/rtsx_usb_ms.c in memstick in the Linux kernel. In this flaw, a local attacker with a user privilege may impact system Confidentiality. This flaw affects kerne...

3.3

CVE-2022-24448

  • EPSS 0.02%
  • Veröffentlicht 04.02.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:50:26

An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5. If an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should occur, b...

5.5

CVE-2022-0286

Exploit
  • EPSS 0.08%
  • Veröffentlicht 31.01.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 06:38:18

A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead to local denial of service.

7.8

CVE-2022-24122

Exploit
  • EPSS 0.12%
  • Veröffentlicht 29.01.2022 22:15:07
  • Zuletzt bearbeitet 21.11.2024 06:49:51

kernel/ucount.c in the Linux kernel 5.14 through 5.16.4, when unprivileged user namespaces are enabled, allows a use-after-free and privilege escalation because a ucounts object can outlive its namespace.

7.2

CVE-2021-22600

Warnung
  • EPSS 0.18%
  • Veröffentlicht 26.01.2022 14:15:08
  • Zuletzt bearbeitet 24.10.2025 13:54:34

A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user through crafted syscalls to escalate privileges or deny service. We recommend upgrading kernel past the effected versions or rebuilding past ec6af094ea2...